Cloud IDS-IP Blacklist-GCP Firewall_Extract
Cloud-IDS Pack.#
This Playbook is part of theSupported versions
Supported Cortex XSOAR versions: 6.0.0 and later.
#
Cloud IDS-IP Blacklist-GCP Firewall_ExtractUse this playbook to extract an attacker's IP address from Cloud IDS through Google Pub/Sub, then update the ip list to patch GCP firewall.
#
Playbook InputsGCPFirewallName - The Name of the GCP Firewall where the playbook should set the IPs
#
Playbook OutputsJsonObject - A JSON object loaded with the attacker's IP address.